Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/2zf7csFktv56BNrjzZ3h-L0Z_II.roa
File: 2zf7csFktv56BNrjzZ3h-L0Z_II.roa (raw, json)
Hash identifier: NOh7ik0e5yF3E6S/7CpsLrWxAaHb3AnvJa4MTKN0eOA=
Subject key identifier: DB:37:FB:72:C1:64:B6:FE:7A:04:DA:E3:CD:9D:E1:F8:BD:19:FC:82
Certificate issuer: /CN=875fc80242d2e69ebd0f22b5e3cc457594ae90ac
Certificate serial: 01856DAF52F10F0623684970091AC7DC1F54
Authority key identifier: 87:5F:C8:02:42:D2:E6:9E:BD:0F:22:B5:E3:CC:45:75:94:AE:90:AC
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/h1_IAkLS5p69DyK148xFdZSukKw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/2zf7csFktv56BNrjzZ3h-L0Z_II.roa
Signing time: Sun 01 Jan 2023 14:14:44 +0000
ROA not before: Sun 01 Jan 2023 14:14:44 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 44486
IP address blocks: 193.169.59.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sun 17 Dec 2023 21:16:06 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:85:6d:af:52:f1:0f:06:23:68:49:70:09:1a:c7:dc:1f:54
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=875fc80242d2e69ebd0f22b5e3cc457594ae90ac
Validity
Not Before: Jan 1 14:14:44 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=db37fb72c164b6fe7a04dae3cd9de1f8bd19fc82
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:80:c4:e6:f6:fc:9e:85:cd:ae:64:71:15:27:2f:
d7:7f:22:b1:d1:34:64:a9:13:26:69:78:02:c8:34:
bd:f7:05:82:7c:e3:7d:eb:02:ef:58:a7:69:03:6c:
58:af:ea:7e:3f:be:14:2e:2a:0d:8e:ac:89:52:9b:
be:8a:ea:b7:17:b4:7a:95:ac:b3:03:32:eb:94:36:
0b:33:15:6c:dc:21:1e:1c:cb:3f:05:5d:d2:8c:79:
cf:3c:5a:36:bd:2b:34:f9:ea:7d:a6:12:45:1e:35:
99:52:1c:ec:98:10:4f:db:1e:ef:ab:e6:0d:68:89:
eb:94:7e:50:4a:31:5c:dc:fa:a2:ad:44:e4:e9:45:
55:de:9a:7b:c7:6c:aa:a8:01:aa:76:40:1c:d7:9d:
1e:fe:1a:6e:96:67:a0:16:31:ab:2c:29:c6:72:cd:
b4:fa:73:8d:da:9b:04:2e:b2:29:bb:96:68:fc:f5:
66:f4:56:ab:4e:0c:b5:1c:58:a3:cc:b9:4d:b7:08:
26:d7:0d:ec:2b:3b:0f:3c:6a:2c:50:c3:d1:d5:44:
0e:c6:da:e8:3c:62:bd:d4:33:20:6f:eb:65:5f:16:
e4:d0:58:6e:7f:1b:3a:96:72:12:1b:ed:3f:44:e5:
83:05:01:07:7f:b9:32:22:2a:55:20:5a:66:77:58:
ca:d5
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
DB:37:FB:72:C1:64:B6:FE:7A:04:DA:E3:CD:9D:E1:F8:BD:19:FC:82
X509v3 Authority Key Identifier:
keyid:87:5F:C8:02:42:D2:E6:9E:BD:0F:22:B5:E3:CC:45:75:94:AE:90:AC
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/h1_IAkLS5p69DyK148xFdZSukKw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/2zf7csFktv56BNrjzZ3h-L0Z_II.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/61025f-43da-437d-b010-cc49e534db00/1/h1_IAkLS5p69DyK148xFdZSukKw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
193.169.59.0/24
Signature Algorithm: sha256WithRSAEncryption
2c:37:50:1d:8d:7a:f4:89:1b:26:ed:3a:96:ea:5a:16:a9:b3:
e9:bc:2f:e6:98:7e:20:46:42:51:29:cd:e7:3b:59:f0:ab:25:
c6:c5:b1:7b:9b:89:8a:68:02:55:c5:8d:0c:04:2e:69:fb:93:
f4:7f:f9:d3:0d:48:ab:a6:2c:a1:d3:51:e4:2f:b5:f9:d5:11:
7f:03:8c:79:d7:29:bc:d9:37:fd:8f:0f:b2:07:9e:fa:c5:c6:
04:60:0d:39:d0:5c:96:d6:e7:73:f3:82:9b:14:01:fa:3d:73:
f9:e8:f6:7d:0e:9f:01:01:be:aa:c1:e0:10:6e:98:7c:6c:77:
1d:d0:74:d6:ba:ce:f6:0b:6a:74:48:a9:76:3f:6e:f4:b2:48:
a4:1c:60:a8:a5:47:ea:9c:7a:28:1a:9d:77:76:53:41:94:aa:
bd:22:b2:0e:1f:24:c9:e7:36:e4:25:21:d9:22:23:34:bc:39:
30:71:07:3c:d7:1d:3d:fa:35:1f:93:05:3f:85:60:7d:17:e9:
22:00:a1:fd:33:77:62:28:a0:84:e4:50:e6:5d:92:23:e1:2e:
e2:88:35:d7:5a:2d:82:d8:a3:d3:33:0f:a9:ec:bc:79:d3:0f:
e8:13:ac:ed:ce:8c:af:fb:80:57:6f:a3:b4:6c:fc:94:d0:0a:
57:7d:c0:b9
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:59:54 2024 by rpki-client on console-fra.rpki-client.org